The alias of the certificate trusted for verifying signatures on
SAML protocol elements from this Asserting Party. The certificate must
be registered in the SAML Identity Asserter's certificate registry.
Must be set for Browser/POST profile.

The Source ID of the SAML Source Site represented by this Asserting
Party. Used for Browser/Artifact profile only, to look up the partner
configuration corresponding to an artifact that has been received.

The Intersite Transfer Service (ITS) URL of the SAML Source Site
for this Asserting Party.

Used with SSO profiles only, to support the destination site first
scenario, whereby a user tries to access a destination site URL prior
to being authenticated and is redirected to the source site to be
authenticated and obtain a SAML assertion. The Redirect URIs attribute
must also be configured for source-site redirection to work.

The alias of the certificate trusted for verifying signatures on
assertions from this Asserting Party. This must be set if Signature
Required is true. The certificate must also be registered in the SAML
Identity Asserter's certificate registry.

Indicates whether the SAML Identity Asserter is allowed to create
user/group principals for the user represented by an incoming
assertion.

If true, the SAML Authentication provider should also be configured
for the realm. This setting enables the SAML Identity Asserter to
create user/group principals, with the possible result that the user
is logged in as a virtual user -- a user that does not correspond to
any locally-known user. If false, the SAML Identity Asserter will not
create user/group principals for the user, and identity assertion will
fail unless the user is authenticated by some other authentication
provider, indicating that the user name corresponds to a known local
user.